[sudo-users] sudo 1.7.1 with pam, ldap and SSL on solaris 10: need help
Todd C. Miller
Todd.Miller at courtesan.com
Wed May 27 15:22:56 EDT 2009
In message <b5ff222b0905271014t216924aco502816dbf9d3c62a at mail.gmail.com>
so spake "M. Fija" (fija00):
> > sudo -l
> LDAP Config Summary
> ===================
> uri ldap://myldapserver
> ldap_version 3
> sudoers_base ou=sudoers,dc=example,dc=fr
> binddn cn=host1,ou=systems,dc=example,dc=fr
> bindpw host1pwd
> ssl on
> tls_checkpeer (yes)
> tls_certfile /var/ldap/cert8.db
> ===================
> sudo: ldapssl_clientauth_init(/var/ldap/cert8.db, NULL)
> sudo: unable to initialize SSL cert and key db: security library: bad
> database.
> sudo: unable to initialize LDAP: Unknown error
> Password:
It looks like you have tls_checkpeer enabled but no (or invalid?)
/var/ldap/cert8.db file.
- todd
More information about the sudo-users
mailing list